[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f2IsnDPc1E6NKPRMxwprsi0E4cPBjeci50381o73AkqY":3},{"slug":4,"display_name":5,"profile_url":6,"plugin_count":7,"total_installs":8,"avg_security_score":9,"avg_patch_time_days":10,"trust_score":11,"computed_at":12,"plugins":13},"wpautologin","WPAutoLogin","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpautologin\u002F",1,8000,85,30,84,"2026-04-05T09:46:50.784Z",[14],{"slug":15,"name":16,"version":17,"author":5,"author_profile":6,"description":18,"short_description":19,"active_installs":8,"downloaded":20,"rating":21,"num_ratings":22,"last_updated":23,"tested_up_to":24,"requires_at_least":25,"requires_php":26,"tags":27,"homepage":33,"download_link":34,"security_score":9,"vuln_count":35,"unpatched_count":35,"last_vuln_date":36,"fetched_at":37},"autologin-links","Autologin Links","1.12.0","\u003Cp>This plugin allows admininstators to generate autologin links for their\u003Cbr \u002F>\nWordPress website, logging in visitors under a certain user name. Administrators\u003Cbr \u002F>\ncan edit (generate and delete) autologin links for users, users can only view\u003Cbr \u002F>\ntheir autologin links. Note that \u003Cstrong>This plugin bypasses the standard\u003Cbr \u002F>\nauthentication method of wordpress via login and password and should only be\u003Cbr \u002F>\nused if you understand the security issues mentioned below and on the\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.craftware.nl\u002Fwordpress-autologin\u002F\" rel=\"nofollow ugc\">plugin website\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Once this plugin is activated, administrators can generate autologin links on\u003Cbr \u002F>\nthe edit profile administration pages for different users. Users can view their\u003Cbr \u002F>\nautlogin links on their profile pages. Autologin links are of the form:\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fyourwebsite\u002F[subdirectory\u002F]?autologin_code=ABC123\u003C\u002Fp>\n\u003Cp>For more convenience it is possible since version 1.05 to generate login links\u003Cbr \u002F>\ndirectly using the wordpress, site-preview functionality. When viewing the page\u003Cbr \u002F>\nwhile being logged in as an administrator, the top-bar will show an extra item\u003Cbr \u002F>\n“Auto-login link”. When pointing at the menu item, a dropdown list will list\u003Cbr \u002F>\nall users for whom autologin links were generated on their profile pages. When\u003Cbr \u002F>\nclicking on one of the users, a popup will open showing the link that will\u003Cbr \u002F>\nautomatically login a visitor as the selected user and bring him to the\u003Cbr \u002F>\ncurrent page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security issues\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Since autologin links are meant to be an OPEN way to login to\u003Cbr \u002F>\nyour website and can be viewed by users on their profile, it might be considered\u003Cbr \u002F>\nan INSECURE plugin for WordPress. I did my best to make it as secure as possible\u003Cbr \u002F>\nto fit my own needs, but this lead to some design choices which might not sit\u003Cbr \u002F>\nwell with all administrators:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Autologin codes are saved as plain text.\u003C\u002Fstrong> This means that anyone who can\u003Cbr \u002F>\nexecute queries on the WordPress database (plugins, administrators, system\u003Cbr \u002F>\nadministrators) can obtain the autologin code for a certain user. I planned an\u003Cbr \u002F>\nextension of this plugin where login codes are hashed. However, this again has\u003Cbr \u002F>\nthe disadvantage that noone can redisplay a once generated login link.\u003C\u002Fp>\n\u003Cp>This is the most severe problem. For a full self-assesment of possible security\u003Cbr \u002F>\nissues regarding this problem, please visit the\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.craftware.nl\u002Fwordpress-autologin\u002F\" rel=\"nofollow ugc\">plugin website\u003C\u002Fa>.\u003C\u002Fp>\n","WARNING: THIS PLUGIN CAN BE INSECURE IF NOT USED CAUTIOUSLY. Allows selected users to autologin to your WordPress website via autologin links.",56259,94,15,"2021-02-24T21:07:00.000Z","5.6.17","4.9.8","",[28,29,30,31,32],"auto","automatic","link","links","login","https:\u002F\u002Fwww.craftware.info\u002Fprojects-lists\u002Fwordpress-autologin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautologin-links.zip",0,null,"2026-03-15T15:16:48.613Z"]